Junos
Junos

JunOS: Forward all but Traffic Logs to Syslog Server

03.07.12   |  
‎03-07-2012 01:03 AM

Hi,

I'd like to know how to configure Log forwarding on the JunOS device to forward all but Traffic logs. This is what my config looks like:

set system syslog host 192.168.2.21 any any
set system syslog host 192.168.2.21 facility-override authorization
[edit system syslog host 192.168.2.21]

 

with 192.168.2.21 beeing my Syslog Server obviously.

 

How do you do this in JunOS? 

5 REPLIES
Junos

Re: JunOS: Forward all but Traffic Logs to Syslog Server

03.07.12   |  
‎03-07-2012 07:15 AM

hi alex...

if you are asking how to code for loging some info from your device on your remote server, have not you replied it yourself.... i mean this is how it is::

set system syslog host <ip-address> <faclity> <severity level>

faclity -> u have to decide yourself like authorization, interactive comands, change-log or any

severity-> again u have to decide like info, error, any

(Although any any will generate too much of logs, so its better to be specific)....

So isnt it what u askd and replied??? or am i mistaken to get your question????

NASIR RAZA
JNCIA-JUNOS, JNCIS-ENT.
Junos

Re: JunOS: Forward all but Traffic Logs to Syslog Server

03.07.12   |  
‎03-07-2012 07:47 AM

I'd like to log everything except traffic logs. Thats not so hard to understand, is it? 

Junos
Solution
Accepted by topic author alex2308cc
‎08-26-2015 01:27 AM

Re: JunOS: Forward all but Traffic Logs to Syslog Server

03.07.12   |  
‎03-07-2012 08:44 AM

Hi,

 

does either of these help:

 

http://kb.juniper.net/InfoCenter/index?page=content&id=KB22588

 

http://kb.juniper.net/InfoCenter/index?page=content&id=KB22177

 

Best Regards

 

Ulf

If this worked for you please flag my post as an "Accepted Solution" so others can benefit. A kudo would be cool if you think I earned it.
Highlighted
Junos

Re: JunOS: Forward all but Traffic Logs to Syslog Server

03.07.12   |  
‎03-07-2012 09:16 AM

That worked, thanks Ulf!

 

(You really need the quotes in the match statement! My mistake trying to make a filter without the quotes ", it will end up in a filter called match "!", which is senseless) 

Junos

Re: JunOS: Forward all but Traffic Logs to Syslog Server

03.07.12   |  
‎03-07-2012 09:19 AM

to finalize it, filter for "RT_FLOW_SESSION" which is the keyword for traffic